Data Protection and Privacy Specialist (in the Legal team) in Bucuresti

Role purpose:Vodafone Intelligent Solutions (_VOIS) has businesses in India, Egypt, Hungary, Romania Albania and Spain. _VOIS is a key element in Vodafone’s broader programme to transform, standardise and digitalise the management of various processes across commercial activities such as Customer Operations, Business, Corporate Functions, IT & Networks, and support functions such as Finance, HR and the security teams. The _VOIS strategy is underpinned by the ‘safe, secure and compliant’ agenda which is its license to operate for serving Vodafone local markets and group functions.The DPPO is a key role to ensure compliance with privacy laws and regulations (incl. GDPR), with Group policies and guidelines and with _VOIS EU standards by creating and implementing local policies and procedures, creating, and operating internal controls and processes in the area of Data Privacy within the _VOIS EU Shared Service Centre.The role reports directly to the Head of Legal _VOIS EU and works with the _VOIS privacy teams, supporting Head of Legal _VOIS EU to coordinate _VOIS EU related privacy task within EU privacy teams, and with _VOIS Center of Excellence (COE) and _VOIS Centre management, Service Line/Group stakeholders, _VOIS EU Centre business process, control and risk owners, privacy SPOCs within the departments and privacy teams in Group and at _VOIS.With these activities, you will have a great impact on our business:Data Privacy (DP):- Implement and operate the _VOIS privacy program and privacy improvement projects across _VOIS in line with Vodafone Group privacy program.- Manage the key deliverables of the GDPR program implementation in _VOIS RO- Verify that key processes/channels to identify privacy risks operate effectively ( through Privacy Impact Assessment, Vendor on-boarding assessment, transition due diligence) - Ensure compliance with the __VOIS Privacy Management Framework- Ensure data processing in _VOIS RO is in line with local and applicable international legislation.- Ensure that _VOIS RO organisation is legally entitled for data sharing and processing (GDSA) and Vodafone/_VOIS personal data is protected when processed by others (NDA, DPA and other related agreements)- Ensure processing of personal data is documented for all local business units (Personal Data Processing Registers)- Conduct activities to review whether the data privacy legislative and policy requirements are followed in _VOIS RO ( contract reviews, Evidence Based Testing “EBT”)- Ensure that privacy risks are identified and addressed and logged in the Operational Issue register ( through Privacy Impact Assessment, Vendor on-boarding assessment, Transition due diligence) - Ensure all identified privacy risks are assigned to an owner and with proper mitigation/acceptance in the Operational Issue Register.- Ensure that identified risks and their mitigation statuses are reported to the local function management and _VOIS Leadership- Ensure data privacy incidents are identified (and underlying monitoring capabilities exist) across all relevant departments, incidents are investigated properly and reported regularly- Engage SPoC community and provide them with appropriate level of trainings, information, advisory and provide feedback on their effectiveness.- Implement proper awareness raising around data privacy requirements in _VOIS ROInter-functional Relationships”- Interact with _VOIS EU and _VOIS for all aspects of data privacy and with Vodafone Group based on the ways of working agreed with _VOIS- Liaise with Internal Audit- Liaise with Information Security and Corporate Security- Ensure that Business and Support functions and Process Owners and others involved in the DPP activities are fully aware of their responsibilities and delivering against expected timelines and in quality- Liaise with other Vodafone Companies to ensure that DP requirements are met- Single Point of Contact for all privacy matters across the centre and actively supports _VOIS RO organization level compliance efforts- Interacts with other centres Spocs for sharing and considering good practicesLeadership and Teamwork:- Educate and increase awareness of all VF Group and _VOIS EU governance and control procedures and processes, privacy initiatives ensuring total adherenceActing as a delegation of Authorities with _VOIS EU Privacy team when it is needed an requested by _VOIS EU head of Legal .With these skills, you are a great candidate:University Graduate with Economics/Legal Professional Qualification5-7 Years post qualification experience in a business/ risk/compliance/internal audit/legal environmentStrong Team leadership skills. Inspires, motivates and delivers.Knowledge of local and international Privacy/Data management and protection standardsKnowledge of risk assessment management and related frameworks (such as ISO, COSO and COBIT)Experience in Shared Service environment with the focus to identify and streamline processes and central controlsExposure to working with Senior ManagementProblem solving and Decision makingFluency in EnglishIT LiteracySounds like the perfect job? We’ve got even more to offer:• Work from home- a hybrid approach• Medical and dental services • Life insurance • Dedicated employee phone subscription • Special discounts for gyms and retailers • Annual Company Bonus • Ongoing Education – we continuously invest in you to ensure you have everything needed to excel on the job and enhance your skills • You get to work with tried and trusted web-technology • Getting in on the ground floor of a technology changing company • Flexible Vacation – Take time off when you need it, we trust you! • Sounds interesting? Apply! #_vois